The landmark Crinum prosecution last month is being discussed across boardrooms as a workplace safety story. It is also a governance failure lesson that matters to every broker with a client operating in a high-consequence environment, whether that’s a mine site, a construction project, a chemical plant or a transport fleet.
This case involved Graham Dawson, an experienced 62-year-old underground miner who was fatally crushed and another worker was seriously injured during a tunnel roof collapse at the Crinum coal mine in the Bowen Basin in 2021. The workers were installing roof supports at the time. On May 1, the District Court of Queensland ruled that Dawson’s death was entirely avoidable and that the company's inadequate strata control systems and decision to use "shotcrete" (sprayed concrete) exposed workers to unacceptable, unsupported roof risks. The company was fined $7 million and ordered to pay an additional $300,000 to cover prosecution and investigation costs. The key finding with widespread ramiifications, however, is that for the first time, a corporate entity, Mastermyne Crinum Operations, was found guilty of criminal negligence leading to industrial manslaughter.
This case is also the first conviction under Queensland’s mining-specific industrial manslaughter laws. The five year court battle involved proceedings against senior statutory operational leaders and placed individual officers squarely in the crosshairs of a regulatory enforcement machine.
What the Queensland case illuminates is a pattern that risk advisors are increasingly being asked to help identify and address: organisations with sophisticated reporting structures, mature policy frameworks and well-credentialled safety teams that nonetheless have limited visibility into whether the controls that matter most are actually working at the coalface. In the resources sector, that gap has now produced Australia’s first industrial manslaughter conviction of a mining operator. In other industries, regulators are watching closely.
“In many major incidents, organisations did not fail because they lacked policies,” said James Ritchie (pictured), practice leader for workplace and enterprise risk management at Bellrock Advisory. “They failed because they lacked visibility into whether those policies translated into effective frontline controls.”
This is a major challenge facing boards and executives in 2026 - and it is increasingly the central question that insurers and regulators are asking in the aftermath of serious incidents.
The risk Ritchie identifies is particularly acute in mature organisations. As governance frameworks develop over time, they can generate an administrative confidence that is not always earned. Boards receive reports on training completion rates, incident frequencies and assurance activity. They approve policies, endorse frameworks and attend safety briefings. What they may not receive is meaningful evidence that critical controls - the specific barriers standing between normal operations and catastrophic harm - are consistently understood, implemented and verified by the people doing the work.
Ritchie described this phenomenon in terms that should resonate across any high-risk industry.
“Risk does not typically emerge from a single catastrophic decision, but rather from the accumulation of accepted workarounds, control drift and assumptions that critical risks remain effectively managed,” he said.
That framing applies equally to a tier-one contractor, a bulk liquid terminal, a hospital system or a large logistics operator. The mechanism - gradual normalisation of deviation, compounding over time, invisible to those at the top - is industry agnostic.
For brokers, this creates both a professional obligation and a genuine commercial opportunity. Those who move beyond compliance-based risk conversations and start asking operational assurance questions are adding a quality of insight that underwriters, risk managers and boards genuinely value.
Ritchie has developed a set of operational assurance questions that brokers can deploy directly with clients - and, importantly, with underwriters. Can management clearly articulate the organisation’s critical risks? How does the organisation verify that its critical controls are functioning in practice? When was the last time a control failed, and what was learned? Can frontline workers explain the controls that keep them safe?
That last question can be very revealing. In organisations where governance has drifted from operational reality, frontline workers often cannot articulate the controls relied upon to protect them - and that gap is precisely what regulators are now trained to find.
The implications of the Crinum case for D&O, statutory liability, management liability and professional indemnity underwriting are signficant. An underwriter assessing a risk based on documented systems alone may be systematically underestimating exposure in organisations where those systems are not translating into frontline behaviour.
So post-Crinum, the standard of officer due diligence has effectively been reset. Regulators will examine not just whether systems existed but whether officers actively verified they were working. Brokers who can help clients demonstrate that verification - and flag where it is absent - are providing a service that goes well beyond insurance placement.
